Required CVE Record Information
Description
Multiple cross-site scripting (XSS) vulnerabilities in member.php in MyBulletin Board (MyBB) 1.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) aim, (2) yahoo, (3) msn, or (4) website field.
References 6 Total
- osvdb.org: 23935 vdb-entry
- http://kapda.ir/advisory-297.html
- http://community.mybboard.net/showthread.php?tid=7368
- securityfocus.com: 17097 vdb-entry
- securityfocus.com: 20060314 [[KAPDA::#35] MyBB 1.0.3~member.php~XSS Attack in contact details mailing-list
- exchange.xforce.ibmcloud.com: mybb-member-xss(25263) vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 6 Total
- osvdb.org: 23935 vdb-entryx_transferred
- http://kapda.ir/advisory-297.html x_transferred
- http://community.mybboard.net/showthread.php?tid=7368 x_transferred
- securityfocus.com: 17097 vdb-entryx_transferred
- securityfocus.com: 20060314 [[KAPDA::#35] MyBB 1.0.3~member.php~XSS Attack in contact details mailing-listx_transferred
- exchange.xforce.ibmcloud.com: mybb-member-xss(25263) vdb-entryx_transferred